📖 What is Multi-Factor Authentication (MFA)?
Multi-Factor Authentication (MFA) is a security mechanism that requires users to provide two or more verification factors to gain access to a resource. These factors typically include something you know, something you have, or something you are, significantly reducing the risk of unauthorized access from stolen passwords.
"Student, remember that 'something you are' refers to biometrics. If an exam question asks for the most effective way to prevent unauthorized access via compromised credentials, MFA is almost always the correct answer."
📚 Certification: CompTIA A+ Certification Exam Core 2 (220-1102)
🔑 What are the Key Concepts of Multi-Factor Authentication (MFA)?
- ▸ Something you know: Passwords, PINs, or security questions used as the primary knowledge-based authentication factor.
- ▸ Something you have: Physical tokens, smart cards, or mobile devices that receive a time-based one-time password (TOTP).
- ▸ Something you are: Biometric data such as fingerprints, facial recognition, or iris scans that uniquely identify a person's physical traits.
- ▸ Something you do: Behavioral patterns like typing cadence or gait analysis, often used in advanced fraud detection systems.
- ▸ Something you are located: Location-based authentication using GPS or IP addresses to ensure access is requested from a trusted region.
🎯 How does Multi-Factor Authentication (MFA) appear on the 220-1102 Exam?
You may be asked to identify the most effective security control to implement after a company experiences multiple account takeovers due to credential stuffing attacks, where the correct answer is enabling MFA.
A scenario might describe a user logging in with a password and then entering a code from a mobile app; you must identify that this uses 'something you know' and 'something you have'.
Expect questions where you must distinguish between single-factor and multi-factor authentication based on the types of credentials provided, such as distinguishing between two passwords versus a password and a fingerprint.
❓ Frequently Asked Questions
What is the difference between Two-Factor Authentication (2FA) and Multi-Factor Authentication (MFA)?
2FA is a specific subset of MFA. While 2FA requires exactly two factors for verification, MFA is a broader term that refers to using two or more factors to verify a user's identity.
Is using two different passwords considered multi-factor authentication?
No. Because both passwords fall under the 'something you know' category, this is considered multi-step authentication. True MFA requires factors from different categories, such as a password and a physical token.